Replies: 1 comment 2 replies
-
|
The best practice here would be to use the secret vault and/or global validation settings. https://www.win-acme.com/manual/advanced-use/secret-management |
Beta Was this translation helpful? Give feedback.
-
|
Tha ks ill look into that, do you k ow of any guieds for using this with azure AD DNS plugins ?? Assume i just add the secret to the more options -> secret area... then use the custom uri when setting up the cert.. ill give it ago see what happens... |
Beta Was this translation helpful? Give feedback.
-
|
It's not possible to change any settings for an existing renewal by providing command line parameters, unless you completely recreate it. |
Beta Was this translation helpful? Give feedback.
-
In Azure, after a set period the Application Principle's secrets expire, this requires you to generate a new secret and update winacme.
I am struggling to update the secret on winacme, it seems to update the secret encryption string but still fails when authenticating to DNS to write the challenge.
I completely re-setup winacme with the same new secret and it is all working again.. however I would like too know how to simply update the secret rather than needed to do a full (m) re-create of the certificate every time the secret expires.
I did try running "wacs.exe --validation azure --azuretenantid xxxxxxxxxxxx --azureclientid xxxxxxxxxxx --azuresecret xxxxxxxxxxx --azuresubscriptionid xxxxxxxxxx --azureresourcegroupname xxxxxxxx --verbose"
but that did not work.. although it did update the encrypted secret section of the.json.. it still failed to auth when issuing the DNS challenge.
Beta Was this translation helpful? Give feedback.
All reactions